Lucene search
Veracode Vulnerability DatabaseVERACODE:40019HistoryApr 02, 2023 - 1:20 p.m.
Cross-Site Scripting (XSS)
2023-04-0213:20:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
rails
xss vulnerability
input sanitization
html elements
arbitrary javascript
0 Low
EPSS
Percentile
0.0%
rails is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to a lack of user-input sanitization in HTML elements, which allows an attacker to inject and execute arbitrary JavaScript into the browser.
Related
github
github
ubuntucve
ubuntucve
CVE-2023-23913
2023-03-22 00:00:00
gitlab
gitlab
openvas
openvas
openSUSE: Security Advisory for rubygem (SUSE-SU-2023:3813-1)
2024-03-04 00:00:00
Debian: Security Advisory (DSA-5389-1)
2023-04-17 00:00:00
cve
cve
CVE-2023-23913
2023-04-08 00:37:48
debiancve
debiancve
CVE-2023-23913
2023-04-08 00:37:48
hackerone
hackerone
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : rubygem-actionview-5_1 (SUSE-SU-2023:3813-1)
2023-09-28 00:00:00
Debian DSA-5389-1 : rails - security update
2023-04-15 00:00:00
osv
osv
rails-ujs vulnerable to DOM Based Cross-site Scripting contenteditable HTML Elements
2023-06-09 22:41:16
rails - security update
2023-04-14 00:00:00
redhatcve
redhatcve
CVE-2023-23913
2023-03-27 18:13:07
rubygems
rubygems
debian
debian
[SECURITY] [DSA 5389-1] rails security update
2023-04-14 16:39:00